I have used pam_tacplus to use Tacacs instead which is better in my opinion. You can then use your ACS/ISE policy sets, the same ones you use for your Cisco network devices will work fine. Here is the setup for CentOS7 or Redhat with pam_tacplus for ...
You can create a new user just as you would in any other linux distribution, not going to go through that here. If your not well versed in linux then I would not say doing this to maintain root might not be beneficial for you. I have created another ...
Yes, this is true so you can just go into your linux root on ssh when you need to use the Cisco ISE cli and do a "chattr -i /etc/shadow" and when you are done and make sure to do this before rebooting again do a: "chattr +i /etc/shadow". I rarely ev...
This looks like a good solution for context a, then now my context b and context c for example which are already working with wccp from a single interface. I suppose I also have to do the same setup on the other contexts now using PBR and cannot use...
cannot get this working either, the first working service ID grabs all the buckets and the second service ID that registers will not get a hash allotment nor any buckets. Can you explain what you did with PBR to to get this to work? I have multiple D...
